Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

SSH Brute Force Mitigation

How can I mitigate a brute force attack on my SSH server running IOS 12.4? Is there an ip inspect statement that can be added to disable connection attempts from an IP who has multiple failed login attempts?

5 REPLIES

Re: SSH Brute Force Mitigation

Hi,

The only solution is put an ACL for SSH/VTY access. Do not open SSH/VTY access to any.

Regards,

Dandy

New Member

Re: SSH Brute Force Mitigation

I actually found a solution elsewhere on the forum for this.

Thanks to Rick Burts!

http://www.cisco.com/en/US/products/ps6350/products_configuration_guide_chapter09186a0080455b93.html#wp1027195

Hall of Fame Super Silver

Re: SSH Brute Force Mitigation

Michael

I am glad that you found that thread. I think that the login enhancements will do what you are looking for. Thanks for mentioning me in conjunction with this solution.

HTH

Rick

New Member

Re: SSH Brute Force Mitigation

Rick -

No problem. Appreciate your participation here. I have been reading Terry Slattery's blog and he gave you a mention on Sunday. Are you blogging anywhere?

Thanks again,

Mike

Hall of Fame Super Silver

Re: SSH Brute Force Mitigation

Mike

Thanks for reading and noticing Terry's blog. I have really enjoyed my association with him.

No I am not currently blogging anywhere.

HTH

Rick

636
Views
0
Helpful
5
Replies
CreatePlease login to create content